Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A system comprising: a batch server comprising one or more hardware processors and a memory storing instructions, the one or more hardware processors configurable to: instruct a master computing system, in communication with a plurality of slave computing systems, to distribute a plurality of policies among the plurality of slave computing systems such that each one of the plurality of policies is assigned to a corresponding one of the slave computing systems, each of the plurality of policies being configurable to, when executed by a corresponding one of the plurality of slave computing systems, cause the corresponding one of the slave computing systems that has been assigned the policy to: identify a set of files that satisfies the policy, and cause the set of files to be deleted by instructing a second master computing system to delete the set of files, the second master computing system configurable to: monitor central processing unit (CPU) usage of a second plurality of slave computing systems; and distribute responsibility for deletion of the set of files among at least a portion of the second plurality of slave computing systems according to a result of monitoring CPU usage of the second plurality of slave computing systems.
This invention relates to distributed file management and deletion in computing systems. The problem addressed is the efficient and controlled deletion of large sets of files across multiple computing resources. The system includes a batch server with hardware processors and memory. This server is configured to direct a master computing system, which is in communication with multiple slave computing systems. The batch server instructs the master system to distribute various policies among these slave systems. Each policy, when executed by its assigned slave system, performs two main functions. First, it identifies a specific set of files that meet the criteria defined by the policy. Second, it initiates the deletion of these identified files by instructing a second master computing system. This second master computing system is designed to monitor the central processing unit (CPU) usage of a separate group of slave computing systems. Based on this CPU usage monitoring, it then distributes the task of deleting the files among at least some of these second slave systems. This distribution is done in a manner that considers the current CPU load, potentially optimizing the deletion process by offloading work to less busy systems.
2. The system as recited in claim 1 , the database system further configurable to cause the corresponding one of the plurality of slave computing systems to cause the set of files to be deleted by instructing a file storage system to delete the set of files.
3. The system as recited in claim 1 , the database system further configurable to cause a name of each of the plurality of policies to be provided as a key parameter of a map task executed by a corresponding one of the second plurality of slave computing systems.
4. The system as recited in claim 1 , the one or more hardware processors further configurable to: cause instructions to be sent to the master computing system for execution by each of the plurality of slave computing systems.
5. The system as recited in claim 1 , the one or more hardware processors further configurable to transmit identifiers of the policies to the master computing system.
6. The system as recited in claim 5 , each of the identifiers corresponding to one of a plurality of policy files.
7. The system as recited in claim 1 , at least one of the policies corresponding to a particular group, customer, or tenant.
A system for managing access control policies in a multi-tenant or multi-customer environment. The system provides a centralized framework for defining, storing, and enforcing access control policies that apply to specific groups, individual customers, or tenants. Each policy governs access permissions, restrictions, or conditions for resources, services, or data within the system. The policies are dynamically applied based on the context of the request, such as the identity of the user, the group they belong to, or the tenant they are associated with. The system ensures that access decisions are consistent, scalable, and adaptable to different organizational structures or business requirements. Policies may include rules for authentication, authorization, auditing, or compliance, and can be customized for different levels of granularity, such as per-user, per-group, or per-tenant. The system may also support policy inheritance, conflict resolution, and real-time updates to maintain security and operational efficiency. This approach simplifies policy management in complex environments where multiple entities share infrastructure or services while maintaining isolation and security boundaries.
8. A computer program product comprising computer-readable program code capable of being executed by one or more processors when retrieved from a non-transitory computer-readable medium, the program code comprising computer-readable instructions configurable to cause: instructing a master computing system in communication with a plurality of slave computing systems, to distribute a plurality of policies among the plurality of slave computing systems such that each one of the plurality of policies is assigned to a corresponding one of the slave computing systems, each of the plurality of policies being configurable to cause a corresponding one of the plurality of slave computing systems that has been assigned the policy to: identify a set of files that satisfies the policy, and cause the set of files to be deleted by instructing a second master computing system to delete the set of files, the second master computing system configurable to: monitor central processing unit (CPU) usage of a second plurality of slave computing systems; and distribute responsibility for deletion of the set of files among at least a portion of the second plurality of slave computing systems according to a result of monitoring CPU usage of the second plurality of slave computing systems.
This invention relates to a distributed computing system for managing file deletion policies across multiple computing systems. The system addresses the challenge of efficiently distributing and executing file deletion tasks in a large-scale computing environment while optimizing resource utilization. The system includes a master computing system that distributes a set of policies to multiple slave computing systems. Each policy is assigned to a specific slave computing system and defines criteria for identifying files that should be deleted. Upon identifying a set of files that match the policy, the slave computing system instructs a second master computing system to handle the deletion process. The second master computing system monitors the CPU usage of another set of slave computing systems and distributes the deletion tasks among them based on their current CPU load. This ensures that deletion operations are performed efficiently without overloading any single system. The system dynamically balances the workload to maintain optimal performance across the distributed computing environment.
9. The computer program product as recited in claim 8 , the program code comprising instructions further configured to cause: the corresponding one of the plurality of slave computing systems to cause the set of files to be deleted by instructing a file storage system to delete the set of files.
10. The computer program product as recited in claim 8 , the program code comprising instructions further configured to cause: providing a name of each of the plurality of policies as a key parameter of a map task executed by a corresponding one of the second plurality of slave computing systems.
11. The computer program product as recited in claim 8 , the program code comprising instructions further configured to cause: sending instructions to the master computing system for execution by each of the plurality of slave computing systems.
12. The computer program product as recited in claim 8 , the program code comprising computer-readable instructions further configurable to cause: transmitting identifiers of the plurality of policies to the master computing system.
This invention relates to a system for managing policies in a distributed computing environment. The problem addressed is the need for efficient policy distribution and synchronization across multiple computing systems. The invention provides a computer program product that includes program code for managing policies, where the program code is executable by a processor to perform specific functions. One key function is transmitting identifiers of a plurality of policies to a master computing system. This allows the master system to track and manage the policies across the distributed network. The program code may also include instructions for receiving policy updates from the master system, applying those updates to local policies, and ensuring consistency across the network. The system ensures that policies are properly distributed, updated, and enforced across all computing systems in the environment. The invention improves policy management by reducing manual intervention and ensuring real-time synchronization. This is particularly useful in large-scale distributed systems where policy consistency is critical for security and compliance. The program code may also handle policy conflicts, prioritization, and validation to maintain system integrity. The overall solution enhances the efficiency and reliability of policy management in distributed computing environments.
13. The computer program product as recited in claim 12 , each of the identifiers corresponding to one of a plurality of policy files.
14. The computer program product as recited in claim 8 , at least one of the policies corresponding to a particular group, customer, or tenant.
A system and method for managing access control policies in a cloud computing environment. The system addresses the challenge of efficiently enforcing and managing access policies across multiple tenants, groups, or customers in a shared infrastructure. The invention provides a computer program product that includes a set of access control policies stored in a database. These policies are dynamically assigned and enforced based on the identity of the requesting user, group, or tenant. The system evaluates the policies in real-time to determine whether a requested action is permitted, ensuring secure and compliant access to resources. The policies can be customized for specific groups, customers, or tenants, allowing for granular control over access permissions. The system also includes a policy management interface that enables administrators to create, modify, and delete policies, ensuring flexibility and adaptability to changing security requirements. The invention further includes a policy enforcement module that intercepts access requests, evaluates the applicable policies, and grants or denies access accordingly. This approach improves security, reduces administrative overhead, and ensures consistent policy enforcement across a multi-tenant environment.
15. A method, comprising: instructing a master computing system, in communication with a plurality of slave computing systems, to distribute a plurality of policies among the plurality of slave computing systems such that each one of the plurality of policies is assigned to a corresponding one of the slave computing systems, each of the plurality of policies being configurable to cause a corresponding one of the plurality of slave computing systems that has been assigned the policy to: identify a set of files that satisfies the policy, and cause the set of files to be deleted by instructing a second master computing system to delete the set of files, the second master computing system configurable to: monitor central processing unit (CPU) usage of a second plurality of slave computing systems; and distribute responsibility for deletion of the set of files among at least a portion of the second plurality of slave computing systems according to a result of monitoring CPU usage of the second plurality of slave computing systems.
16. The method as recited in claim 15 , further comprising: causing the corresponding one of the plurality of slave computing systems to cause the set of files to be deleted by instructing a file storage system to delete the set of files.
This invention relates to distributed computing systems, specifically methods for managing file deletion across multiple computing systems. The problem addressed is the need for efficient and coordinated deletion of files in a distributed environment where multiple computing systems (referred to as slave systems) interact with a central system (referred to as a master system). The invention provides a solution for ensuring that files are deleted consistently and reliably across all relevant systems. The method involves a master computing system that manages a plurality of slave computing systems. Each slave system is responsible for storing and managing a set of files. When the master system determines that a particular set of files should be deleted, it sends a deletion instruction to the corresponding slave system. The slave system then executes the deletion by instructing a file storage system to remove the specified files. This approach ensures that the deletion process is centralized and coordinated, reducing the risk of inconsistencies or errors in file management across the distributed system. The file storage system may be a separate entity or integrated within the slave system, depending on the system architecture. The method supports scalable and reliable file deletion in distributed computing environments.
17. The method as recited in claim 15 , further comprising: sending instructions to the master computing system for execution by each of the plurality of slave computing systems.
A system and method for distributed computing involves a master computing system coordinating tasks across multiple slave computing systems. The master system assigns tasks to the slaves, which execute the tasks and return results. This approach improves computational efficiency by parallelizing workloads across multiple processors or machines. The method includes sending instructions from the master system to each slave system for execution. The instructions may include specific tasks, data processing operations, or other computational functions. The slaves process the instructions and return outputs to the master, which may aggregate or further process the results. This distributed architecture is useful in high-performance computing, data processing, and large-scale simulations where workloads exceed the capacity of a single system. The method ensures synchronization and coordination between the master and slaves to maintain data consistency and task completion. Error handling mechanisms may be included to manage failures or delays in slave systems. The system can be applied in fields such as scientific computing, financial modeling, and machine learning, where parallel processing enhances performance and scalability.
18. The method as recited in claim 15 , the instructions further configurable to instruct the master computing system to distribute the plurality of policies among the plurality of slave computing systems by distributing a plurality of policy files corresponding to the plurality of policies among the slave computing systems.
This invention relates to distributed computing systems where a master computing system manages and distributes policies to multiple slave computing systems. The problem addressed is the efficient and scalable distribution of policies across a network of computing systems to ensure consistent enforcement of rules, configurations, or security measures. The method involves a master computing system that generates or receives a plurality of policies, which are sets of rules or configurations governing the operation of the slave computing systems. These policies are stored as policy files, which are digital documents or data structures containing the policy definitions. The master computing system then distributes these policy files to the slave computing systems, ensuring that each slave system receives the appropriate policies for its operation. The distribution process may involve transmitting the policy files over a network, storing them in a shared location accessible by the slave systems, or using a combination of methods to ensure reliable delivery. The slave computing systems receive the policy files and apply the policies they contain, modifying their behavior, configurations, or security settings accordingly. This ensures that all slave systems operate under the same set of rules, maintaining consistency across the distributed system. The method may also include mechanisms for verifying the successful distribution and application of policies, such as acknowledgment messages or status checks from the slave systems. This approach improves the manageability and security of distributed computing environments by centralizing policy management while ensuring that all systems remain compliant with the defined rules.
19. The method as recited in claim 15 , further comprising: transmitting identifiers of the plurality of policies to the master computing system.
20. The method as recited in claim 19 , each of the identifiers corresponding to one of a plurality of policy files.
21. The method as recited in claim 15 , at least one of the policies corresponding to a particular group, customer, or tenant.
Unknown
February 2, 2021
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.